Lucene search

PRIOn knowledge basePRION:CVE-2006-0292

HistoryFeb 02, 2006 - 8:06 p.m.

Design/Logic Flaw

2006-02-0220:06:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.958 High

EPSS

Percentile

99.4%

JSON

The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garbage collection.

CPENameOperatorVersion
firefoxeq0.8
firefoxeq1.0.2
firefoxeq1.5 beta1
firefoxeq1.5
firefoxeq0.9.1
firefoxeq1.0.4
firefoxeq1.0.7
firefoxeq0.10.1
firefoxeq0.9
firefoxeq1.0

Name	Operator	Version
firefox	eq	0.8
firefox	eq	1.0.2
firefox	eq	1.5 beta1
firefox	eq	1.5
firefox	eq	0.9.1
firefox	eq	1.0.4
firefox	eq	1.0.7
firefox	eq	0.10.1
firefox	eq	0.9
firefox	eq	1.0

Rows per page:

1-10 of 251

References

ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt

ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U

secunia.com/advisories/18700

secunia.com/advisories/18703

secunia.com/advisories/18704

secunia.com/advisories/18705

secunia.com/advisories/18706

secunia.com/advisories/18708

secunia.com/advisories/18709

secunia.com/advisories/19230

secunia.com/advisories/19746

secunia.com/advisories/19759

secunia.com/advisories/19780

secunia.com/advisories/19821

secunia.com/advisories/19823

secunia.com/advisories/19852

secunia.com/advisories/19862

secunia.com/advisories/19863

secunia.com/advisories/19902

secunia.com/advisories/19941

secunia.com/advisories/19950

secunia.com/advisories/20051

secunia.com/advisories/21033

secunia.com/advisories/21622

secunia.com/advisories/22065

securitytracker.com/id?1015570

sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1

sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1

support.avaya.com/elmodocs2/security/ASA-2006-205.htm

www.debian.org/security/2006/dsa-1044

www.debian.org/security/2006/dsa-1046

www.debian.org/security/2006/dsa-1051

www.gentoo.org/security/en/glsa/glsa-200604-12.xml

www.gentoo.org/security/en/glsa/glsa-200604-18.xml

www.gentoo.org/security/en/glsa/glsa-200605-09.xml

www.mandriva.com/security/advisories?name=MDKSA-2006:036

www.mandriva.com/security/advisories?name=MDKSA-2006:037

www.mandriva.com/security/advisories?name=MDKSA-2006:078

www.mozilla.org/security/announce/2006/mfsa2006-01.html

www.novell.com/linux/security/advisories/2006_04_25.html

www.redhat.com/archives/fedora-announce-list/2006-February/msg00005.html

www.redhat.com/archives/fedora-announce-list/2006-February/msg00006.html

www.redhat.com/support/errata/RHSA-2006-0199.html

www.redhat.com/support/errata/RHSA-2006-0200.html

www.redhat.com/support/errata/RHSA-2006-0330.html

www.securityfocus.com/archive/1/425975/100/0/threaded

www.securityfocus.com/archive/1/425978/100/0/threaded

www.securityfocus.com/archive/1/438730/100/0/threaded

www.securityfocus.com/archive/1/446657/100/200/threaded

www.securityfocus.com/bid/16476

www.vupen.com/english/advisories/2006/0413

www.vupen.com/english/advisories/2006/3391

www.vupen.com/english/advisories/2006/3749

bugzilla.mozilla.org/show_bug.cgi?id=316885

exchange.xforce.ibmcloud.com/vulnerabilities/24430

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10016

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A670

usn.ubuntu.com/271-1/

usn.ubuntu.com/275-1/

usn.ubuntu.com/276-1/

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.958 High

EPSS

Percentile

99.4%

JSON

Related for PRION:CVE-2006-0292